IT & Cybersecurity Vendor Auditor

Job Title: IT & Cybersecurity Vendor Auditor
Client: State of Texas
Work Location: Austin, TX (Hybrid)

Overview:
Seeking an experienced IT & Cybersecurity Vendor Auditor to assess third-party vendors for compliance with contractual, regulatory, and industry security standards. The role involves auditing vendor controls, identifying risks, and ensuring effective remediation.

Key Responsibilities:
Review vendor contracts, SLAs, and security requirements for compliance.
Audit technical and administrative controls against NIST, ISO 27001, PCI-DSS, or SOC 2.
Collect and analyze security evidence (policies, logs, access records).
Conduct interviews and control testing to validate safeguards.
Identify gaps, risks, and non-compliance; issue detailed audit reports.
Track remediation efforts and communicate vendor risks to stakeholders.

Minimum Qualifications:
8+ years in IT/cybersecurity auditing, vendor risk management, and compliance.
Strong knowledge of security frameworks, data protection laws, and regulatory standards.
Hands-on experience with vendor control testing and audit evidence collection.
Excellent reporting, communication, and risk assessment skills.

Preferred:
Experience auditing cloud (AWS, Azure, Google Cloud Platform).
Knowledge of incident response and SLA compliance.
Government/regulated industry audit background.
Certifications (CISA, CISSP, CRISC, ISO 27001 Lead Auditor).
please share resume to